goldfish_setup.te revision 0f54ada1cd4605e29cc86ee37fe7843b1d98db9b
1# goldfish-setup service: runs init.goldfish.sh script 2type goldfish_setup, domain; 3type goldfish_setup_exec, exec_type, file_type; 4 5init_daemon_domain(goldfish_setup) 6 7# Inherit open file to shell (interpreter) for script. 8allow goldfish_setup shell_exec:file read; 9 10# Run ifconfig, route commands to configure interfaces and routes. 11allow goldfish_setup system_file:file execute_no_trans; 12allow goldfish_setup self:capability { net_admin net_raw }; 13allow goldfish_setup self:udp_socket create_socket_perms; 14 15# Set net.eth0.dns*, debug.sf.nobootanimation 16set_prop(goldfish_setup, system_prop) 17set_prop(goldfish_setup, debug_prop) 18 19# Set ro.radio.noril 20set_prop(goldfish_setup, radio_noril_prop) 21 22# Stop ril-daemon service (by setting ctl.stop to ril-daemon, which 23# transforms to a permission check on ctl.ril-daemon). 24set_prop(goldfish_setup, ctl_rildaemon_prop) 25